Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/qMkCRzmREMPKZr2saumrkxz-28Y.roa
File: qMkCRzmREMPKZr2saumrkxz-28Y.roa (raw, json)
Hash identifier: e8LeQqN9ugfOKinJyTrghD7WbZ1nL6aCwFFKqBXH0uE=
Subject key identifier: A8:C9:02:47:39:91:10:C3:CA:66:BD:AC:6A:E9:AB:93:1C:FE:DB:C6
Certificate issuer: /CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Certificate serial: 018F9F546B3CE04A77589B23A07FF2315C3E
Authority key identifier: B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/qMkCRzmREMPKZr2saumrkxz-28Y.roa
Signing time: Wed 22 May 2024 08:04:20 +0000
ROA not before: Wed 22 May 2024 08:04:20 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 211750
IP address blocks: 195.88.190.0/24 maxlen: 24
Validation: Failed, certificate revoked on Sat 25 May 2024 12:59:42 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8f:9f:54:6b:3c:e0:4a:77:58:9b:23:a0:7f:f2:31:5c:3e
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=b557ccd43afe816e4953228bf14a75dc29014b8d
Validity
Not Before: May 22 08:04:20 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=a8c90247399110c3ca66bdac6ae9ab931cfedbc6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:90:17:8b:be:ac:e9:1d:b4:d5:1f:a7:df:fb:23:
fd:c4:bd:93:27:00:a7:84:ec:a2:a9:80:5f:b3:e1:
44:ef:71:a5:41:69:e6:73:90:f9:f9:aa:01:c0:83:
0c:2c:8d:69:3e:1a:26:f5:14:9d:2b:c1:8b:d4:df:
11:c5:de:52:8e:dd:d0:35:c9:c0:c0:a6:63:b3:32:
02:7a:91:d8:75:39:e7:e9:2c:14:4c:45:00:b5:d2:
f4:a7:40:ef:d1:b2:9a:e6:c9:8b:d4:9a:9b:c5:53:
92:ce:ef:3d:9b:9f:4c:ff:e8:f6:af:dc:75:c5:dc:
1d:ca:7b:fc:06:53:ab:dd:fe:b3:28:4a:67:ad:27:
0e:9c:50:13:c5:60:2f:6e:e8:26:ee:9e:61:67:6e:
42:cf:8d:9f:af:97:fe:30:8e:50:8f:8d:84:3d:f4:
cf:53:55:ca:6c:ce:2c:51:72:01:67:18:98:08:49:
f1:a8:dd:1d:56:16:e2:26:29:0c:0e:e2:41:99:6e:
c4:07:af:cf:51:11:90:13:d4:9f:3c:98:2e:40:8e:
2d:7e:a2:dd:61:a2:48:0a:c2:a0:d4:91:73:a3:f7:
03:84:38:f1:04:f8:68:d1:75:9d:2a:87:90:63:0f:
8b:07:c5:3c:bb:5c:15:bd:21:18:43:ef:91:b9:a0:
fe:15
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
A8:C9:02:47:39:91:10:C3:CA:66:BD:AC:6A:E9:AB:93:1C:FE:DB:C6
X509v3 Authority Key Identifier:
keyid:B5:57:CC:D4:3A:FE:81:6E:49:53:22:8B:F1:4A:75:DC:29:01:4B:8D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/tVfM1Dr-gW5JUyKL8Up13CkBS40.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/qMkCRzmREMPKZr2saumrkxz-28Y.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0b/190843-1803-4462-a795-6bc75578b4c3/1/tVfM1Dr-gW5JUyKL8Up13CkBS40.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
195.88.190.0/24
Signature Algorithm: sha256WithRSAEncryption
9f:6a:2a:39:14:fa:fb:de:12:51:b4:88:6c:ca:92:e5:51:a5:
01:ff:ed:01:9c:5d:80:d6:93:e8:2f:a6:79:21:2f:f0:ae:bd:
0f:a1:7f:34:3d:98:63:e2:a8:f6:d2:bd:82:be:16:55:06:d7:
50:5e:46:83:d8:ac:06:46:c7:13:47:9b:8f:e9:63:c4:e4:a4:
5c:67:68:83:18:04:02:d2:32:91:1c:10:41:5b:17:48:a1:c9:
cc:37:90:ee:bc:e8:d4:32:48:fc:a5:ee:b2:ed:e3:81:5e:be:
b8:55:11:f0:4e:e1:71:19:14:18:bd:24:18:bc:b0:8c:89:e3:
cb:37:b6:61:6d:ea:e0:50:0a:05:b4:06:c4:63:96:f1:8f:86:
d3:0f:9a:27:3f:f8:4c:1a:3a:cd:7c:3f:65:01:4a:b4:3c:e1:
4a:5e:a9:f8:d4:77:f5:4f:78:9f:f6:cf:5e:f1:b9:e4:66:23:
b7:d8:b8:38:2a:36:5c:24:22:fb:c9:e4:65:e7:53:04:66:e9:
08:bf:d2:bd:78:7f:09:4a:c3:e7:69:a3:ad:e7:b9:c1:4a:cc:
6b:98:43:9f:e4:c9:22:b0:88:5b:08:20:04:99:37:f2:c6:6d:
a3:55:9e:e7:83:91:a8:d6:c8:72:f1:37:8f:f3:38:4b:1a:ec:
f4:9c:78:83
-----BEGIN CERTIFICATE-----
MIIE/TCCA+WgAwIBAgISAY+fVGs84Ep3WJsjoH/yMVw+MA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGI1NTdjY2Q0M2FmZTgxNmU0OTUzMjI4YmYxNGE3NWRjMjkw
MTRiOGQwHhcNMjQwNTIyMDgwNDIwWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EyhhOGM5MDI0NzM5OTExMGMzY2E2NmJkYWM2YWU5YWI5MzFjZmVkYmM2MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkBeLvqzpHbTVH6ff+yP9xL2TJwCn
hOyiqYBfs+FE73GlQWnmc5D5+aoBwIMMLI1pPhom9RSdK8GL1N8Rxd5Sjt3QNcnA
wKZjszICepHYdTnn6SwUTEUAtdL0p0Dv0bKa5smL1JqbxVOSzu89m59M/+j2r9x1
xdwdynv8BlOr3f6zKEpnrScOnFATxWAvbugm7p5hZ25Cz42fr5f+MI5Qj42EPfTP
U1XKbM4sUXIBZxiYCEnxqN0dVhbiJikMDuJBmW7EB6/PURGQE9SfPJguQI4tfqLd
YaJICsKg1JFzo/cDhDjxBPho0XWdKoeQYw+LB8U8u1wVvSEYQ++RuaD+FQIDAQAB
o4ICCTCCAgUwHQYDVR0OBBYEFKjJAkc5kRDDyma9rGrpq5Mc/tvGMB8GA1UdIwQY
MBaAFLVXzNQ6/oFuSVMii/FKddwpAUuNMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUt
NmJjNzU1NzhiNGMzLzEvcU1rQ1J6bVJFTVBLWnIyc2F1bXJreHotMjhZLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC8wYi8xOTA4NDMtMTgwMy00NDYyLWE3OTUtNmJjNzU1NzhiNGMz
LzEvdFZmTTFEci1nVzVKVXlLTDhVcDEzQ2tCUzQwLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAw1i+MA0G
CSqGSIb3DQEBCwUAA4IBAQCfaio5FPr73hJRtIhsypLlUaUB/+0BnF2A1pPoL6Z5
IS/wrr0PoX80PZhj4qj20r2CvhZVBtdQXkaD2KwGRscTR5uP6WPE5KRcZ2iDGAQC
0jKRHBBBWxdIocnMN5DuvOjUMkj8pe6y7eOBXr64VRHwTuFxGRQYvSQYvLCMiePL
N7ZhbergUAoFtAbEY5bxj4bTD5onP/hMGjrNfD9lAUq0POFKXqn41Hf1T3if9s9e
8bnkZiO32Lg4KjZcJCL7yeRl51MEZukIv9K9eH8JSsPnaaOt57nBSsxrmEOf5Mki
sIhbCCAEmTfyxm2jVZ7ng5Go1shy8TeP8zhLGuz0nHiD
-----END CERTIFICATE-----
Generated at Thu Jun 6 17:18:25 2024 by rpki-client on console-fra.rpki-client.org